Skip to content

Commit

Permalink
Spsh 166 trivy warnings (#92)
Browse files Browse the repository at this point in the history
* Update versions because of security advisory

* Removed useless intersection

* Bump @nestjs/cli from 9.5.0 to 10.2.1 (#73)

* Bump @nestjs/cli from 9.5.0 to 10.2.1

Bumps [@nestjs/cli](https://github.com/nestjs/nest-cli) from 9.5.0 to 10.2.1.
- [Release notes](https://github.com/nestjs/nest-cli/releases)
- [Changelog](https://github.com/nestjs/nest-cli/blob/master/.release-it.json)
- [Commits](nestjs/nest-cli@9.5.0...10.2.1)

---
updated-dependencies:
- dependency-name: "@nestjs/cli"
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump @types/passport from 1.0.14 to 1.0.15 (#76)

Bumps [@types/passport](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/passport) from 1.0.14 to 1.0.15.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/passport)

---
updated-dependencies:
- dependency-name: "@types/passport"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>

* Bump prettier from 2.8.8 to 3.0.3 (#75)

* Bump prettier from 2.8.8 to 3.0.3

Bumps [prettier](https://github.com/prettier/prettier) from 2.8.8 to 3.0.3.
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@2.8.8...3.0.3)

---
updated-dependencies:
- dependency-name: prettier
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
* Updating peer dependency eslint-plugin-prettier
* Fixing linter errors

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>

* Bump @types/express from 4.17.20 to 4.17.21 (#77)

Bumps [@types/express](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/express) from 4.17.20 to 4.17.21.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/express)

---
updated-dependencies:
- dependency-name: "@types/express"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>

* Bump ts-loader from 9.4.4 to 9.5.0 (#71)

Bumps [ts-loader](https://github.com/TypeStrong/ts-loader) from 9.4.4 to 9.5.0.
- [Release notes](https://github.com/TypeStrong/ts-loader/releases)
- [Changelog](https://github.com/TypeStrong/ts-loader/blob/main/CHANGELOG.md)
- [Commits](TypeStrong/ts-loader@v9.4.4...v9.5.0)

---
updated-dependencies:
- dependency-name: ts-loader
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>

* Bump @nestjs/swagger from 7.1.13 to 7.1.14 (#74)

Bumps [@nestjs/swagger](https://github.com/nestjs/swagger) from 7.1.13 to 7.1.14.
- [Release notes](https://github.com/nestjs/swagger/releases)
- [Changelog](https://github.com/nestjs/swagger/blob/master/.release-it.json)
- [Commits](nestjs/swagger@7.1.13...7.1.14)

---
updated-dependencies:
- dependency-name: "@nestjs/swagger"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>

* Bump @nestjs/axios from 3.0.0 to 3.0.1 (#72)

Bumps [@nestjs/axios](https://github.com/nestjs/axios) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/nestjs/axios/releases)
- [Changelog](https://github.com/nestjs/axios/blob/master/.release-it.json)
- [Commits](nestjs/axios@3.0.0...3.0.1)

---
updated-dependencies:
- dependency-name: "@nestjs/axios"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>

* Bump @nestjs/schematics from 9.2.0 to 10.0.3 (#78)

Bumps [@nestjs/schematics](https://github.com/nestjs/schematics) from 9.2.0 to 10.0.3.
- [Release notes](https://github.com/nestjs/schematics/releases)
- [Changelog](https://github.com/nestjs/schematics/blob/master/.release-it.json)
- [Commits](nestjs/schematics@9.2.0...10.0.3)

---
updated-dependencies:
- dependency-name: "@nestjs/schematics"
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: YannickEvers <[email protected]>
Co-authored-by: Patrick Sachmann <[email protected]>

* Bump @nestjs/config from 2.3.4 to 3.1.1 (#70)

Bumps [@nestjs/config](https://github.com/nestjs/config) from 2.3.4 to 3.1.1.
- [Release notes](https://github.com/nestjs/config/releases)
- [Changelog](https://github.com/nestjs/config/blob/master/.release-it.json)
- [Commits](nestjs/config@2.3.4...3.1.1)

---
updated-dependencies:
- dependency-name: "@nestjs/config"
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>

* Pull up node and alpine version as well as libraries (#83)

* Pull up node and alpine version

* Triggered package update

* Bump @faker-js/faker from 8.1.0 to 8.2.0 (#91)

Bumps [@faker-js/faker](https://github.com/faker-js/faker) from 8.1.0 to 8.2.0.
- [Release notes](https://github.com/faker-js/faker/releases)
- [Changelog](https://github.com/faker-js/faker/blob/next/CHANGELOG.md)
- [Commits](faker-js/faker@v8.1.0...v8.2.0)

---
updated-dependencies:
- dependency-name: "@faker-js/faker"
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @types/express-session from 1.17.9 to 1.17.10 (#89)

Bumps [@types/express-session](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/express-session) from 1.17.9 to 1.17.10.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/express-session)

---
updated-dependencies:
- dependency-name: "@types/express-session"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>

* Bump prettier from 3.0.3 to 3.1.0 (#87)

Bumps [prettier](https://github.com/prettier/prettier) from 3.0.3 to 3.1.0.
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.0.3...3.1.0)

---
updated-dependencies:
- dependency-name: prettier
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump eslint-plugin-jest from 27.4.2 to 27.6.0 (#86)

Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest) from 27.4.2 to 27.6.0.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases)
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md)
- [Commits](jest-community/eslint-plugin-jest@v27.4.2...v27.6.0)

---
updated-dependencies:
- dependency-name: eslint-plugin-jest
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @nestjs/swagger from 7.1.14 to 7.1.15 (#85)

Bumps [@nestjs/swagger](https://github.com/nestjs/swagger) from 7.1.14 to 7.1.15.
- [Release notes](https://github.com/nestjs/swagger/releases)
- [Changelog](https://github.com/nestjs/swagger/blob/master/.release-it.json)
- [Commits](nestjs/swagger@7.1.14...7.1.15)

---
updated-dependencies:
- dependency-name: "@nestjs/swagger"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump nest-commander from 3.11.0 to 3.12.2 (#88)

Bumps [nest-commander](https://github.com/jmcdo29/nest-commander/tree/HEAD/pacakges/nest-commander) from 3.11.0 to 3.12.2.
- [Release notes](https://github.com/jmcdo29/nest-commander/releases)
- [Commits](https://github.com/jmcdo29/nest-commander/commits/[email protected]/pacakges/nest-commander)

---
updated-dependencies:
- dependency-name: nest-commander
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Spsh 141 redis into helm (#61)

* Inital Redis template

* Inital service

* Script to create self signed certificates

* Script to copy the certificates

* Configure Redis to enable TLS, disable unencrypted

* Make config files and scripts available to pods

* Introduce init pod and build certificates

* Added comments and a little more structure

* Changed name to fit with others

* Added comments and removed unecessary config params

* Add test user

* Add password-requirement

* Preserve line endings

* Corrected ingress to point to BFF

* Fixed User-ID

* Added timestamp of creation

---------

Co-authored-by: DPDS93CT <[email protected]>

* Updating package-lock.json

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>
Co-authored-by: YannickEvers <[email protected]>
Co-authored-by: Kristoff Kiefer <[email protected]>
Co-authored-by: DPDS93CT <[email protected]>

* Merge with main

* Update package.lock

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Patrick Sachmann <[email protected]>
Co-authored-by: YannickEvers <[email protected]>
Co-authored-by: DPDS93CT <[email protected]>
  • Loading branch information
5 people authored Nov 15, 2023
1 parent af9bcb2 commit 916a88e
Show file tree
Hide file tree
Showing 3 changed files with 58 additions and 43 deletions.
95 changes: 55 additions & 40 deletions package-lock.json

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
Original file line number Diff line number Diff line change
Expand Up @@ -55,7 +55,7 @@
"express-session": "^1.17.3",
"lodash": "^4.17.21",
"lodash-es": "^4.17.21",
"nest-commander": "^3.12.2",
"nest-commander": "~3.10",
"nest-keycloak-connect": "^1.9.2",
"openid-client": "^5.6.0",
"passport": "^0.6.0",
Expand Down
4 changes: 2 additions & 2 deletions src/modules/frontend/auth/user.decorator.ts
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
import { ExecutionContext, createParamDecorator } from '@nestjs/common';
import { createParamDecorator, ExecutionContext } from '@nestjs/common';
import { Request } from 'express';
import { UserinfoResponse } from 'openid-client';

type UserDecoratorFactory = () => ParameterDecorator;

export type User = { id_token: string; access_token: string; userinfo: UserinfoResponse } & Express.User;
export type User = { id_token: string; access_token: string; userinfo: UserinfoResponse };

export const CurrentUser: UserDecoratorFactory = createParamDecorator((_data: unknown, ctx: ExecutionContext) => {
const request: Request = ctx.switchToHttp().getRequest<Request>();
Expand Down

0 comments on commit 916a88e

Please sign in to comment.